[Git][security-tracker-team/security-tracker][master] Add new python issue (CVE-2021-3737)

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Aug 27 07:41:04 BST 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3203c5ce by Salvatore Bonaccorso at 2021-08-27T08:40:36+02:00
Add new python issue (CVE-2021-3737)

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4,8 +4,27 @@ CVE-2021-40146
 	RESERVED
 CVE-2021-3738
 	RESERVED
-CVE-2021-3737
+CVE-2021-3737 [client can enter an infinite loop on a 100 Continue response from the server]
 	RESERVED
+	[experimental] - python3.9 3.9.6-1
+	- python3.9 <unfixed>
+	- python3.7 <removed>
+	- python3.5 <removed>
+	- python3.4 <removed>
+	NOTE: https://bugs.python.org/issue44022
+	NOTE: https://github.com/python/cpython/pull/25916
+	NOTE: https://github.com/python/cpython/pull/26503
+	NOTE: https://github.com/python/cpython/commit/60ba0b68470a584103e28958d91e93a6db37ec92 (v3.10.0b2)
+	NOTE: https://github.com/python/cpython/commit/ea9327036680acc92d9f89eaf6f6a54d2f8d78d9 (v3.9.6)
+	NOTE: https://github.com/python/cpython/commit/f396864ddfe914531b5856d7bf852808ebfc01ae (v3.8.11)
+	NOTE: https://github.com/python/cpython/commit/078b146f062d212919d0ba25e34e658a8234aa63 (v3.7.11)
+	NOTE: https://github.com/python/cpython/commit/f68d2d69f1da56c2aea1293ecf93ab69a6010ad7 (v3.6.14)
+	NOTE: Needs the "Improve the regression test" followup:
+	NOTE: https://github.com/python/cpython/commit/98e5a7975d99b58d511f171816ecdfb13d5cca18 (v3.10.0b3)
+	NOTE: https://github.com/python/cpython/commit/5df4abd6b033a5f1e48945c6988b45e35e76f647 (v3.9.6)
+	NOTE: https://github.com/python/cpython/commit/0389426fa4af4dfc8b1d7f3f291932d928392d8b (3.8 branch)
+	NOTE: https://github.com/python/cpython/commit/fee96422e6f0056561cf74fef2012cc066c9db86 (v3.7.11)
+	NOTE: https://github.com/python/cpython/commit/1b6f4e5e13ebd1f957b47f7415b53d0869bdbac6 (v3.6.14
 CVE-2021-3736
 	RESERVED
 CVE-2021-40145 (** DISPUTED ** gdImageGd2Ptr in gd_gd2.c in the GD Graphics Library (a ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3203c5ceea7c4a24b82558231418eaf832deb70e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3203c5ceea7c4a24b82558231418eaf832deb70e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210827/50e73419/attachment.htm>

More information about the debian-security-tracker-commits mailing list